Definition

content spoofing

Content spoofing is a type of exploit used by a malicious hackers to present a faked or modified Web site to the user as if it were legitimate. The intent is, typically, to defraud victims (as in phishing) although sometimes the purpose is simply to misrepresent an organization or an individual. Content spoofing often exploits an established trust relationship between a computer user and an organization.

The attacker typically leads an Internet user to spoofed content through e-mail, bulletin-board postings and chat-room transmissions. In some cases, an attacker may modify information and links in an established Web site by accessing and altering content on the server. The latter type of content spoofing is more difficult to detect because there is no readily apparent difference to the casual observer.

The most dangerous content spoofing is done with DHTML (dynamic HTML) content sources such as forms and log-in applications. When a Web page with spoofed content is viewed by an Internet user, the location bar displays what appears to be a legitimate URL. However, the attacker has generated or altered by the page. As a result, when the user enters sensitive data (such as a credit card number, password, bank account number, birth date, or Social Security number), the attacker can obtain the data for identity theft or some other fraudulent purpose.

This was last updated in September 2006

Continue Reading About content spoofing

The Web Application Security Consortium describes content spoofing and provides an example of how it is done.

Secunia identifies a content spoofing vulnerability in Windows, and provides links to appropriate patches.

Dig Deeper on Internet Application Security

All
News
Get Started
Evaluate
Manage
Problem Solve

Start the conversation

Send me notifications when other members comment.

-ADS BY GOOGLE

File Extensions and File Formats

A
B
C
D
E
F
G
H
I
J
K
L
M
N
O
P
Q
R
S

T
U
V
W
X
Y
Z
#

Powered by:

SearchMicroservices

Examples of BPM use cases where iBPM fits in

Does iBPM stand to deliver real value in the workplace? Expert Tom Nolle examines three key use cases that illustrate how iBPM ...
An inside look at the Oracle container management strategy

This Q&A takes an in-depth look at the Oracle container plans, including its work with Docker, Kubernetes and the open source ...
Developing a clearly defined API management strategy

APIs are enjoying a ubiquitous lifestyle and becoming the main entryway to the digital business.

TheServerSide.com

Can a left shift in Java cause DevOps developer burnout?

DevOps burnout is more common than you think. Pay attention to the details in your Java shift left to make sure your dev and ...
Microsoft gains instant Java credibility with jClarity buy

Microsoft has acquired jClarity to help optimize its Azure cloud platform to run Java workloads, a coveted target for the now ...
How to install the JDK on Windows and set up JAVA_HOME

You have options when it comes to JDK installations on Windows and Linux. Here are some helpful tips to ensure a proper install ...

SearchCloudApplications

What Oracle delivered at OOW 2015

Learn how Oracle was pushing its cloud technologies, but OOW 2015 keynote speakers largely talked about cloud strategies.
Five key terms in enterprise cloud applications you need to know

Are you stumped by enterprise cloud applications or related technology? Check out this breakdown of five important terms to help ...
Survey: Developer-programmer pay, job satisfaction below IT average

In TechTarget's 2013 IT Salary and Careers Survey, developer-programmer respondents reported lower pay and less job satisfaction ...

SearchAWS

Implement serverless architecture on AWS without Lambda

Serverless on AWS isn't all about Lambda. In fact, many of the services developers use often -- such as S3, Aurora and others -- ...
AWS Lambda alternatives for flexible cloud workloads

Experts share points of comparison for Lambda vs. the competition, and what other options AWS has for elastic computing without ...
Globe and Mail's AWS migration drives digital engagement

Canadian news outlet The Globe and Mail has broadly adopted AWS cloud services in a bid to increase reader engagement and digital...

SearchBusinessAnalytics

Museums and data: A powerful combination

With more and more museums using data to inform their decision-making processes, visitors are reaping the benefits by enjoying a ...
5 augmented analytics examples in the enterprise

Here are the top examples of augmented analytics uses that BI vendors support and enable, including data preparation, NLP-based ...
Phocas BI tool proves its value for manufacturers, wholesalers

With its focus on the manufacturing and wholesale distribution industries, Phocas Software has carved out a niche for itself ...

SearchHRSoftware

CEO commitment to upskilling employees may boost HR tech

Top CEOs are promising to train their employees and make sure they are ready for an automating world. Whether the promise is real...
Employee engagement technology not a panacea for HR woes

Employee engagement comes in many shapes and forms, leaving employers to scratch their heads at the best way to motivate their ...
Hiring vendor says gender-based AI bias is pervasive

Gender bias in AI algorithms for recruiting and hiring is a big problem, according to the head of Job.com. With a new hire, the ...

SearchHealthIT

Experts say there's still a long road ahead for the FHIR standard

Panelists at ONC's 3rd Interoperability Forum in Washington, D.C., talked about the FHIR standard lacking maturity, as well as ...
Chief transformation officer takes digital one step further

You've heard of the chief digital officer, but what about the chief transformation officer? The title is gaining ground in ...
Success of healthcare APIs hinges on data safety, patient awareness

Healthcare APIs took a front seat during ONC's recent forum in Washington D.C. Panelists and healthcare experts outlined issues ...

DevOpsAgenda

How to bust security silos and secure your operation

DevOps means velocity, though, not at security's expense. Rapid7's Jen Andre thinks automation and orchestration strategies can ...
The first step from Agile to DevOps is a pilot project

Agile to DevOps isn't as perilous as Waterfall to Agile, but it will take measurable goals and an efficient pilot project to ...
Best practices for DevOps compliance and reusability

You know you want to scale with a model-driven process. So how do you make it work? Start with these best practices for ...

Close